Overview:
A vulnerability has been found in the Microsoft MN-500 Wireless Router Web-Based Administration.
Vendor:
Microsoft (http://www.microsoft.com)
Vulnerability/Exploit:
A user can deny access to the web-based administration by establishing 30 connections to the web-based administration port (80). Until the connections are closed, the router administrator cannot access the web-based administration.
Workaround:
None so far.
Date Discovered:
June 21, 2004
Severity:
Medium
Credit:
Paul Kurczaba
Kurczaba Associates
http://www.kurczaba.com/
Visit http://www.kurczaba.com for mailing lists in Security, Encryption, Wireless, MS-Security, and Production Security.
http://www.kurczaba.com/securityadvisories/0406213.htm
-------------------------------------------------------------
Vulnerability ID Number:
0406213
Overview:
A vulnerability has been found in the Microsoft MN-500 Wireless Router Web-Based Administration.
Vendor:
Microsoft (http://www.microsoft.com)
Vulnerability/Exploit:
A user can deny access to the web-based administration by establishing 30 connections to the web-based administration port (80). Until the connections are closed, the router administrator cannot access the web-based administration.
Workaround:
None so far.
Date Discovered:
June 21, 2004
Severity:
Medium
Credit:
Paul Kurczaba
Kurczaba Associates
http://www.kurczaba.com/
Visit http://www.kurczaba.com for mailing lists in Security, Encryption, Wireless, MS-Security, and Production Security.
[ reply ]